Use offensive memory forensics tricks to retrieve password hashes and inject shellcode into a virtual machine

Extend the popular Burp Suite web-hacking tool

Abuse Windows COM automation to perform a man-in-the-browser attack

Exfiltrate data from a network most sneakily

Insider techniques and creative challenges throughout show you how to extend the hacks and how to write your own exploits.

When it comes to offensive security, your ability to create powerful tools on the fly is indispensable. Learn how in Black Hat Python.

Uses Python 2

Author Bio

Justin Seitz is a senior security researcher for Immunity, Inc., where he spends his time bug hunting, reverse engineering, writing exploits, and coding Python. He is the author of Gray Hat Python (No Starch Press), the first book to cover Python for security analysis.

"Another incredible Python book. With a minor tweak or two many of these programs will have at least a ten year shelf life, and that is rare for a security book."—Stephen Northcutt, founding president of the SANS Technology Institute

"A great book using Python for offensive security purposes."—Andrew Case, Volatility core developer and coauthor of The Art of Memory Forensics

"If you truly have a hacker’s mindset, a spark is all you need to make it your own and do something even more amazing. Justin Seitz offers plenty of sparks."—Ethical Hacker (Read More)

"Whether you're interested in becoming a serious hacker/penetration tester or just want to know how they work, this book is one you need to read. Intense, technically sound, and eye-opening."—Sandra Henry-Stocker, IT World (Read More)

"Definitely a recommended read for the technical security professional with some basic previous exposure to Python."—Richard Austin, IEEE Cipher (Read More)

"A well-written book that will put you on track to being able to write powerfuland potentially scarytools. It’s up to you to use them for good."—Steve Mansfield-Devine, editor of Elsevier's Network Security Newsletter

"A well implemented read with lots of good ideas for fun offensive Python projects. So enjoy, and don't forget it's all about the code!"—Dan Borges, LockBoxx

"A useful eye-opener."—MagPi Magazine

Updates

The download location for Kali Linux has changed. You can grab various virtual machines here: